just recieved this , thru email

"hello, I am from Spain and you'll don't believe me,
but a trojan horse in on your pc.
I've scanned the network-ports on the internet. (I know, that's illegal)
And I have found your pc. Your pc is open on the internet for everybody!
Because the smss.exe trojan is running on your system.
Check this, open the task manager and try to stop that!
You'll see, you can't stop this trojan.
When you use win98/me you can't see the trojan!!

On my system was this trojan, too!
And I've found a tool to kill that bad thing.
I hope that I've helped you!

Sorry for my bad english!

greets



can see smss.exe , but not in services (xp) ,,,,,is it a trojan ???

freddy






edit: the guy sent an attactchment ,,,,,i could not open it (no msword etc on lappy) ,,,,,,loaded avg with email plug-in ,,,,I-worm/sober.C

sender Marcelo.Mastrojanie@web.de sounds like he could do with talking to,


freddy

WinTasks Process Library



smss - smss.exe - Process Information
Process File: smss or smss.exe
Process Name: Session Manager Subsystem
Description: Application used to start, manage, and delete user sessions or client sessions under Terminal Server.
Company: Microsoft Corp.
System Process: Yes
Security Risk ( Virus/Trojan/Worm/Adware/Spyware ): No

The email would be the trojan. I assume you are running a halfway decent virus scanner and the fact that the attachment (read trojan installer) wouldn't open is a good thing.... or may be not.l

Freddy try www.anti-trojan.net - 14 day trial and I think there is an online checker too.

Ah, Freddy, you got a brand new one.
You did right getting AVG and it found it.
Here's more info:
http://securityresponse.symantec.com/avcenter/venc/data/w32.sober.c@mm.html